Malicious PDF — malware analysis report

Static analysis result for SHA-256 782d52d1f6960468…

MALICIOUS

PDF

114.3 KB Created: 2022-07-29 07:39:44 +00:00 Authoring application: bevlobad (via PDF Master 1.0.1) First seen: 2026-06-16
MD5: fac8d7d67b40903b4b9b9d33dad20952 SHA-1: 7aa7383d4b452dcdefa5897dcd5f4ee8b3fe2f0a SHA-256: 782d52d1f69604688d408989fb53b9d190409fdb1b2abe9edd8042311c9a5a8d
94 Risk Score

Machine Learning

  • Nyx PDF Classifier clean score 0.0016

Heuristics 4

  • Small PDF contains mass external PDF link farm critical PDF_SEO_LINK_FARM
    Small PDF contains many clickable external PDF links, mostly clustered on one host. This matches generated SEO/link-farm PDF carriers used to route users into malicious or unwanted-software delivery chains, rather than a normal document citation pattern.
  • PDF link farm advertises cracked/pirated software medium PDF_CRACKED_SOFTWARE_LURE
    PDF contains many clickable links whose targets use cracked-software, keygen, serial-key, or warez vocabulary. These are SEO-spam lure documents that rank for software-piracy searches and route users to fake 'crack' download pages distributing potentially-unwanted programs, adware, or droppers. The PDF itself carries no exploit — the risk is the linked destinations.
  • External URI info PDF_URI
    PDF contains an external URL action
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://widesearchengine.com/haltered/burnings/RG93bmxvYWQgU3BzcyAxNyBGdWxsIFZlcnNpb24gRm9yIFdpbmRvd3MgNyAzMiBCaXQRG9?pees=&ZG93bmxvYWR8QnIzTVRacWR6QjhmREUyTlRneU1UazBOek44ZkRJMU9UQjhmQ2hOS1NCWGIzSmtjSEpsYzNNZ1cxaE5URkpRUXlCV01pQlFSRVpk=extrinsic PDF link annotation
    • https://autko.nl/2022/07/cad-earth-v3-1-6-acad-20132014-link/In PDF document text
    • https://webflow-converter.ru/prudentes-como-serpientes-pdf-download-top/In PDF document text
    • http://weedcottage.online/?p=114891In PDF document text
    • https://blackchurchlistings.com/wp-content/uploads/2022/07/wylbeth.pdfIn PDF document text
    • https://www.plori-sifnos.gr/csi-safe-12-01-portable-rar-hot/In PDF document text
    • https://www.dominionphone.com/dead-wishes-download-5kapks-exclusive-2/In PDF document text
    • https://fansloyalty.com/wp-content/uploads/2022/07/OdontologiaLegalEAntropologiaForensepdf_VERIFIED.pdfIn PDF document text
    • https://lanave.es/wp-content/uploads/2022/07/ACDSee_310__The_Golden_Oldie_64_Bit.pdfIn PDF document text
    • https://blackmtb.com/wp-content/uploads/2022/07/adaimaid.pdfIn PDF document text
    • https://www.thiruvalluvan.com/wp-content/uploads/2022/07/Bleach_Heat_The_Soul_7_English_Patch_Mega.pdfIn PDF document text
    • https://www.raven-guard.info/wp-content/uploads/2022/07/Microstation_V8i_Crack_For_Windows_7_64_Bit_Torrent_18.pdfIn PDF document text
    • https://ku6.nl/wp-content/uploads/2022/07/olencor.pdfIn PDF document text
    • http://www.viki-vienna.com/hd-online-player-supernatural-season-11-mp4-1080p/In PDF document text
    • http://www.chelancove.com/librodetermodinamicafairespdf63-extra-quality/In PDF document text
    • https://buycoffeemugs.com/bentley-sewergems-v8i-selectseries-3-08110384-link/In PDF document text
    • https://www.vakantiehuiswinkel.nl/torrent-download-hot-autocad-revit-lt-suite-2018-activation/In PDF document text
    • https://madeinamericabest.com/spymasterproapkcrackedapps-fixed/In PDF document text
    • https://ystym.com/wp-content/uploads/2022/07/idarsal.pdfIn PDF document text
    • https://awaredunya.com/wp-content/uploads/2022/07/Mavis_Beacon_Teaches_Typing_Platinum_25_Torrent_WORK.pdfIn PDF document text
    • http://www.studiofratini.com/adobe-media-encoder-cc-2018-v12-1-64-x64-patch-crack-__top__smind/In PDF document text
    • https://fansloyalty.com/wp-In PDF document text
    • https://lanave.es/wp-In PDF document text
    • https://www.thiruvalluvan.com/wp-In PDF document text
    • https://www.raven-guard.info/wp-In PDF document text
    • https://www.vakantiehuiswinkel.nl/torrent-download-hot-autocad-revit-lt-In PDF document text
    • https://awaredunya.com/wp-content/uploads/2022/07/Mavis_Beacon_Teaches_Typing_PlIn PDF document text
    • http://www.studiofratini.com/adobe-media-encoder-cc-2018-v12-1-64-x64-patch-In PDF document text
    • http://www.tcpdf.orgIn PDF document text
    • http://www.w3.org/1999/02/22-rdf-syntax-ns#In PDF document text
    • http://purl.org/dc/elements/1.1/In PDF document text
    • http://ns.adobe.com/xap/1.0/In PDF document text
    • http://ns.adobe.com/pdf/1.3/In PDF document text
    • http://ns.adobe.com/xap/1.0/mm/In PDF document text
    • http://www.aiim.org/pdfa/ns/extension/In PDF document text
    • http://www.aiim.org/pdfa/ns/schema#In PDF document text
    • http://www.aiim.org/pdfa/ns/property#In PDF document text
    • http://www.aiim.org/pdfa/ns/id/In PDF document text

Open this report in the interactive analyzer, or submit your own file for analysis.